CVE-2013-2251

CRITICAL KEV NUCLEI

Apache Archiva < 1.3.8 - Injection

Title source: rule

Description

Apache Struts 2.0.0 through 2.3.15 allows remote attackers to execute arbitrary OGNL expressions via a parameter with a crafted (1) action:, (2) redirect:, or (3) redirectAction: prefix.

Exploits (5)

exploitdb WRITEUP VERIFIED

by Takeshi Terada · textwebappsmultiple

https://www.exploit-db.com/exploits/44583

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotemultiple

https://www.exploit-db.com/exploits/27135

View Code ZIP pw:eip

gitlab

by java · poc

https://gitlab.com/penetration-test-learn/stgj/java/Apache-Struts-v4

View on gitlab

nomisec WORKING POC

by nth347 · poc

https://github.com/nth347/CVE-2013-2251

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by Takeshi Terada, sinn3r, juan vazquez · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/struts_default_action_mapper.rb

View Code ZIP pw:eip

Nuclei Templates (1)

Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution

CRITICALby exploitation,dwisiswant0,alex

Shodan: http.html:"apache struts" || http.title:"struts2 showcase" || http.html:"struts problem report"

FOFA: body="struts problem report" || title="struts2 showcase" || body="apache struts"

References (17)

[Product] http://archiva.apache.org/security.html

[Exploit, Third Party Advisory] http://cxsecurity.com/issue/WLB-2014010087

[Broken Link] http://osvdb.org/98445

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/159629/Apache-Struts-2-Remote-Code-Execution.html

[Exploit, Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2013/Oct/96

[Mailing List, Third Party Advisory] http://seclists.org/oss-sec/2014/q1/89

[Patch] http://struts.apache.org/release/2.3.x/docs/s2-016.html

[Third Party Advisory] http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131023-struts2

[Third Party Advisory] http://www.fujitsu.com/global/support/software/security/products-f/interstage-bpm-analytics-201301e.html

[Patch, Third Party Advisory] http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

[Patch, Third Party Advisory] http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/61189

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/64758

[Broken Link, Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1029184

[Broken Link, Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1032916

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/90392

[Third Party Advisory, US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-2251

Scores

CVSS v3 9.8

EPSS 0.9433

EPSS Percentile 100.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-03-25

VulnCheck KEV 2020-10-14

InTheWild.io 2022-03-25

ENISA EUVD EUVD-2022-2328

CWE

CWE-74

Status published

Products (16)

apache/archiva 1.2

apache/archiva 1.2.2

apache/archiva 1.3 - 1.3.8

apache/struts 2.0.0 - 2.3.15

fujitsu/gp5000_firmware

fujitsu/gp7000f_firmware

fujitsu/gp-s_firmware

fujitsu/interstage_business_process_manager_analytics 12.0

fujitsu/interstage_business_process_manager_analytics 12.1

fujitsu/primepower_firmware

... and 6 more

Published Jul 20, 2013

KEV Added Mar 25, 2022

Tracked Since Feb 18, 2026